forked frompostgres/postgres
- Notifications
You must be signed in to change notification settings - Fork6
Commita963abd
committed
Fix broken list-munging in ecpg's remove_variables().
The loops over cursor argument variables neglected to ever advance"prevvar". The code would accidentally do the right thing anywaywhen removing the first or second list entry, but if it had toremove the third or later entry then it would also remove allentries between there and the first entry. AFAICS this wouldonly matter for cursors that reference out-of-scope variables,which is a weird Informix compatibility hack; between that andthe lack of impact for short lists, it's not so surprising thatnobody has complained. Nonetheless it's a pretty obvious bug.It would have been more obvious if these loops used a more standardcoding style for chasing the linked lists --- this business with the"prev" pointer sometimes pointing at the current list entry isconfusing and overcomplicated. So rather than just add a minimalband-aid, I chose to rewrite the loops in the same style we useelsewhere, where the "prev" pointer is NULL until we are dealing witha non-first entry and we save the "next" pointer at the top of theloop. (Two of the four loops touched here are not actually buggy,but it seems better to make them all look alike.)Coverity discovered this problem, but not until2b41de4 added codeto free no-longer-needed arguments structs. With that, the incorrectlink updates are possibly touching freed memory, and it complainedabout that. Nonetheless the list corruption hazard is ancient, soback-patch to all supported branches.1 parent78883cd commita963abd
1 file changed
+33
-34
lines changedLines changed: 33 additions & 34 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
260 | 260 | | |
261 | 261 | | |
262 | 262 | | |
263 | | - | |
| 263 | + | |
| 264 | + | |
264 | 265 | | |
265 | | - | |
| 266 | + | |
266 | 267 | | |
| 268 | + | |
267 | 269 | | |
268 | 270 | | |
269 | 271 | | |
270 | | - | |
271 | | - | |
| 272 | + | |
| 273 | + | |
272 | 274 | | |
273 | | - | |
| 275 | + | |
274 | 276 | | |
275 | 277 | | |
276 | 278 | | |
277 | 279 | | |
278 | 280 | | |
279 | 281 | | |
280 | | - | |
281 | | - | |
282 | | - | |
283 | | - | |
284 | 282 | | |
285 | 283 | | |
286 | | - | |
287 | 284 | | |
288 | | - | |
289 | | - | |
290 | 285 | | |
291 | 286 | | |
292 | 287 | | |
293 | 288 | | |
294 | 289 | | |
295 | 290 | | |
296 | 291 | | |
297 | | - | |
| 292 | + | |
| 293 | + | |
298 | 294 | | |
299 | | - | |
| 295 | + | |
300 | 296 | | |
| 297 | + | |
301 | 298 | | |
302 | 299 | | |
303 | | - | |
| 300 | + | |
304 | 301 | | |
305 | 302 | | |
306 | 303 | | |
307 | 304 | | |
308 | 305 | | |
309 | | - | |
| 306 | + | |
| 307 | + | |
310 | 308 | | |
311 | | - | |
| 309 | + | |
| 310 | + | |
312 | 311 | | |
| 312 | + | |
313 | 313 | | |
314 | 314 | | |
315 | 315 | | |
316 | | - | |
317 | | - | |
| 316 | + | |
| 317 | + | |
318 | 318 | | |
319 | | - | |
| 319 | + | |
320 | 320 | | |
| 321 | + | |
| 322 | + | |
321 | 323 | | |
322 | | - | |
| 324 | + | |
| 325 | + | |
323 | 326 | | |
| 327 | + | |
324 | 328 | | |
325 | 329 | | |
326 | 330 | | |
327 | | - | |
328 | | - | |
| 331 | + | |
| 332 | + | |
329 | 333 | | |
330 | | - | |
| 334 | + | |
331 | 335 | | |
| 336 | + | |
| 337 | + | |
332 | 338 | | |
333 | 339 | | |
334 | 340 | | |
335 | 341 | | |
336 | | - | |
337 | | - | |
| 342 | + | |
| 343 | + | |
338 | 344 | | |
339 | | - | |
| 345 | + | |
340 | 346 | | |
341 | 347 | | |
342 | 348 | | |
343 | 349 | | |
344 | | - | |
345 | | - | |
346 | | - | |
347 | | - | |
348 | 350 | | |
349 | 351 | | |
350 | | - | |
351 | 352 | | |
352 | | - | |
353 | | - | |
354 | 353 | | |
355 | 354 | | |
356 | 355 | | |
| |||
0 commit comments
Comments
(0)